Summary
The host is installed with Mozilla Firefox browser and is prone to Remote Code Execution vulnerability.
Impact
Successful exploitation will let attackers to execute arbitrary code which results in memory corruption.
Impact Level: Application
Solution
Upgrade to Firefox version 3.5.1 or later
http://www.mozilla.com/en-US/firefox/all.html
Insight
The flaw is due to an error when processing JavaScript code handling 'font' HTML tags and can be exploited to cause memory corruption.
Affected
Firefox version 3.5 and prior on Windows
References
Severity
Classification
-
CVE CVE-2009-2477 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Flash Media Server multiple vulnerabilities
- Adobe Flash Player Buffer Overflow Vulnerability - Apr14 (Mac OS X)
- Adobe Flash Player Buffer Overflow Vulnerability - Apr14 (Windows)
- Adobe Air Remote Code Execution Vulnerability -June13 (Windows)
- Adobe Flash Player Buffer Overflow Vulnerability - Apr14 (Linux)